siemens / continuous-clearingLinks
The Continuous Clearing Tool scans and collects third-party open-source components used in projects based on NPM, NuGet, Debian, Maven, Python, Conan, Alpine, and Cargo. It then uploads the collected data to SW360 and FOSSology for license clearing, using the respective project ID provided.
☆29Updated last week
Alternatives and similar repositories for continuous-clearing
Users that are interested in continuous-clearing are comparing it to the libraries listed below
Sorting:
- OSS License Open Data☆12Updated 6 years ago
- Service to scan licenses from source code☆12Updated 2 years ago
- Publications done by Double Open.☆16Updated 5 years ago
- SupplyShield is an open-source application security orchestration framework designed to secure your software supply chain from vulnerabil…☆15Updated 2 weeks ago
- Utility that provides an API platform for validating, querying and managing BOM data☆123Updated 2 months ago
- sbomasm: The Complete SBOM Management Toolkit☆94Updated last week
- SBOM Search - Context aware search in SBOM repositories☆29Updated 2 weeks ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆75Updated last week
- OSADL license compatibility matrix as a CSV☆17Updated last year
- Automate open source license compliance and ensure software supply chain integrity☆36Updated last week
- Produce an Open Source Vulnerability JSON file based on information in an SPDX document☆65Updated last year
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆111Updated last week
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆38Updated 3 weeks ago
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆24Updated 10 months ago
- Automating Compliance Tooling Project☆22Updated 3 years ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆255Updated this week
- PURL to CPE Relationship mapping project.☆102Updated this week
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆183Updated this week
- A light-weight app to audit and inventory large codebases for open source license compliance.☆69Updated last week
- A standard API specification for exchanging supply chain artifacts and intelligence☆95Updated last month
- Generate a score for your sbom to understand if it will actually be useful.☆234Updated last year
- The Keep It Simple Software Bill of Material☆11Updated 3 years ago
- CaPyCLI - Python scripts for software license compliance automation with SW360☆20Updated last week
- Low-effort reachability analysis for third-party code vulnerabilities.☆21Updated 2 years ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆80Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆48Updated 2 years ago
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆58Updated this week
- The model for the information captured in SPDX version 3 standard.☆95Updated this week
- Library to ingest and generate SBOMs☆34Updated 3 weeks ago
- NVD API 2.0 client for CVE information☆13Updated 6 months ago